214 matches found
RHEL 9 : openvswitch2.17 (RHSA-2023:1769)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1769 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fixe...
RHEL 9 : openvswitch3.1 (RHSA-2023:1770)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1770 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fixe...
Design/Logic Flaw
A flaw was found in openvswitch OVS. When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying the IP header. This issue results for both kernel and userspace datapath in installing a datapath flow matching all IP protocols nwproto is wildcarded...
CVE-2023-1668
A flaw was found in openvswitch OVS. When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying the IP header. This issue results for both kernel and userspace datapath in installing a datapath flow matching all IP protocols nwproto is wildcarded...
CVE-2023-1668
A flaw was found in openvswitch OVS. When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying the IP header. This issue results for both kernel and userspace datapath in installing a datapath flow matching all IP protocols nwproto is wildcarded...
K21274200: Linux kernel vulnerability CVE-2017-16914
Security Advisory Description The "stubsendretsubmit" function drivers/usb/usbip/stubtx.c in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a denial of service NULL pointer dereference via a specially crafted USB over IP packet. CVE-2017-16914 Impact...
CVE-2022-25734 Loop with Unreachable Exit Condition in MODEM
Denial of service in modem due to missing null check while processing IP packets with padding...
Buffer Overflow
u-boot is vulnerable to buffer overflow. The vulnerability exists because the hole descriptor overwrite in U-Boot IP Packet Defragmentation which allows an attacker to perform arbitrary out of bound writes...
SUSE: Security Advisory (SUSE-SU-2022:2058-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware: Security Advisory (SSA:2009-342-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-20622
CVE-2022-20622 affects Cisco’s Embedded Wireless Controller with Catalyst Access Points Software. The root cause is improper rate limiting of IP packets to the management interface, enabling an unauthenticated, remote attacker to send a high-rate stream to the management interface. This can cause...
PT-2022-2808
Name of the Vulnerable Software and Affected Versions U-Boot version 2022.01 Description The issue is related to a buffer overflow in the CONFIG IP DEFRAG function, which is responsible for IP packet defragmentation in U-Boot bootloaders for Linux-based embedded operating systems. This is caused ...
CVE-2021-23850
A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload...
CVE-2021-23851
A specially crafted TCP/IP packet may cause the camera recovery image web interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload ...
Vulnerabilities fixed in NetBSD
Vulnerabilities have been fixed in NetBSD's IP stack. Because the randomizer for IP packet ID is not turned on by default, and the randomizer is not random enough when it is enabled, a malicious party can analyze the IP traffic and possibly gain access to sensitive data via a man-in-the-middle...
CVE-2021-40116
Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset action...
CVE-2021-40116
Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset action...
Input validation
Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset action...
CVE-2021-40116 Multiple Cisco Products Snort Rule Denial of Service Vulnerability
Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset action...
CVE-2021-40116 Multiple Cisco Products Snort Rule Denial of Service Vulnerability
Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset action...